Ir al contenido
Home
CTFs resueltos
PicoCTF
PicoCTF 2025 writeup
PicoCTF 2024 writeup
PortSwigger Lab Writeups
Menú
Home
CTFs resueltos
PicoCTF
PicoCTF 2025 writeup
PicoCTF 2024 writeup
PortSwigger Lab Writeups
Etiqueta:
Practitioner
Bypassing GraphQL brute force protections
Finding a hidden GraphQL endpoint
OAuth account hijacking via redirect_uri
Forced OAuth profile linking
SSRF via OpenID dynamic client registration
Password brute-force via password change
Password reset poisoning via middleware
Offline password cracking
Brute-forcing a stay-logged-in cookie
2FA broken logic
←
Anterior
Siguiente
→
